CVE-2009-2684
CVE Descriptions
CVE Informations
Related Weaknesses
| Weakness Name | Source | |
|---|---|---|
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Metrics
| Metrics | Score | Severity | CVSS Vector | Source |
|---|---|---|---|---|
| V2 | 4.3 | AV:N/AC:M/Au:N/C:N/I:P/A:N | nvd@nist.gov |
EPSS
EPSS Score
EPSS Percentile
Exploit information
Exploit Database EDB-ID : 10011
Publication date : 2009-10-06 22h00 +00:00
Author : Digital Security Research Group
EDB Verified : Yes
Exploit Database EDB-ID : 10055
Publication date : 2009-07-03 22h00 +00:00
Author : sh2kerr
EDB Verified : Yes
Products Mentioned
Configuraton 0
Hp>>Cm8050_mfp >> Version *
Hp>>Cm8060_mfp >> Version *
Hp>>Color_laserjet_3000n >> Version *
Hp>>Color_laserjet_3600n >> Version *
Hp>>Color_laserjet_3800n >> Version *
Hp>>Color_laserjet_4700n >> Version *
Hp>>Color_laserjet_4730_mfp >> Version *
Hp>>Color_laserjet_6040_mfp >> Version *
Hp>>Color_laserjet_cm4730_mfp >> Version *
Hp>>Color_laserjet_cp3505 >> Version *
Hp>>Color_laserjet_cp4005n >> Version *
Hp>>Color_laserjet_cp6015 >> Version *
Hp>>Ds_9200c >> Version *
Hp>>Ds_9250c >> Version *
Hp>>Laserjet_2410 >> Version *
Hp>>Laserjet_2420 >> Version *
Hp>>Laserjet_2430n >> Version *
Hp>>Laserjet_4240 >> Version *
Hp>>Laserjet_4250n >> Version *
Hp>>Laserjet_4345_mfp >> Version *
Hp>>Laserjet_4350n >> Version *
Hp>>Laserjet_5200n >> Version *
Hp>>Laserjet_9040_mfp >> Version *
Hp>>Laserjet_9040n >> Version *
Hp>>Laserjet_9050_mfp >> Version *
Hp>>Laserjet_9050n >> Version *
Hp>>Laserjet_m3027_mfp >> Version *
Hp>>Laserjet_m3035_mfp >> Version *
Hp>>Laserjet_m4345x_mfp >> Version *
Hp>>Laserjet_m5025_mfp >> Version *
Hp>>Laserjet_m9040_mpf >> Version *
Hp>>Laserjet_m9050_mpf >> Version *
Hp>>Laserjet_p3005n >> Version *
Hp>>Laserjet_p4014 >> Version *
Hp>>Laserjet_p4515 >> Version *
References
Tags : mailing-list, x_refsource_BUGTRAQ
